Abstract
Blockchains like Bitcoin and Namecoin and their re-
spective P2P networks have seen significant adoption in
the past few years and show promise as naming systems
with no trusted parties. Users can register human mean-
ingful names and securely associate data with them, and
only the owner of the particular private keys that regis-
tered them can write or update the name-value pair. In
theory, many decentralized systems can be built using
these blockchain networks, such as new, decentralized
versions of DNS and PKI. As the technology is relatively
new and evolving rapidly, however, little production data
or experience is available to guide design tradeoffs.
In this paper, we describe our experiences operating
a large deployment of a decentralized PKI service built
on top of the Namecoin blockchain. We present vari-
ous challenges pertaining to network reliability, through-
put, and security that we needed to overcome while reg-
istering and updating over 33,000 entries and 200,000
transactions on the Namecoin blockchain. Further, we
discuss how our experience informed the design of a
new blockchain-based naming and storage system called
Blockstack. We detail why we switched from the Name-
coin network to the Bitcoin network for the new sys-
tem, and present operational lessons from this migration.
Blockstack is released as open source software and cur-
rently powers a production PKI system for 55,000 users.